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Security and compliance are still major challenges... 



"The average cost of a security breach rose to $124 per compromised record in 
2010. The biggest cause was negligence . " 

Ponem#n 




"Of the top 5 most important issues for companies migrating to the 
cloud, the #1 issue was identity and access manager™ — ^SSJXCA 
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"The average large company must comply with 45 different regulations." 

-CA-sponsored survey %SuL 



"Compliance activities cost the average medium-sized 
company $5.4K per employee.'' j^omiwiiuw khhtinj*- in^ituir 
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1AM Business drivers and related pain points 



Business Drivers 

Reduce risk 



Support business initiatives 
securely 



Reduce IT costs 



Be compliant 



Pain points 



Inconsistent security controls across systems 

Inability to control information use 

Inability to determine who has access to what 

Secure sprawl of virtual servers 

Protect information in the cloud 

Difficulty quickly deploying new Web apps 

High costs of managing users and access 
Manual security processes 
High costs of siloed security management 
Manual processes makes compliance difficult 
Inability to easily prove compliance 
Ineffective security contr^ 
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A unified approach to security 



Apps 



Priv'd Users 



Servers 
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Service Security 




Web 
Servers 



Web 
Services 



Security of KNOW 

Know User, Access, 
Data, Activity 



[El Infrastructure Security 








Trojans 



Spam 



Worms 



Spy ware 



Security of NO 

No 

Viruses, Spyware, Vulne 

rabilities, Intrusions 
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Service security - the key challenge 



Connect users to information 
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Seems easy enough 
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the dynamic challenge in security 



Ensure the right people have the right access to the right 
information at the right time 



Employees, Contract 
ors, Privileged Users 
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Mobile Devices 



Social Networks 



You have to Authenticate 
People 
Services 
Devices 



Consumers 



Supply Chain 



Partners 








Security Systems 



Directories 



Databases 



Applications 



Operating Systems 



You have to Authorize 
Systems 
Applications 

• Information 



You have to Report 

User/Service Activity 

• Information Activity 

• Privileged Activity 
Privacy/Compliance 
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Traditional 1AM models fall short 



Identity 

• Roles 

- Entitlements 



Traditional DLP 



Information 

• Classification 

• Control 



Traditional 1AM 



Access 

| • Policies 
- Enforcement 
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Moving from 1AM to identity intelligence 




Identity 

• Roles 

- Entitlements 
Identity governance 

• Risk scores 



Intelligence 
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Content-aware 
1AM 



Information 



Classification 



Access 



Identity-based control 
Identity attributes 



Content-based 
enforcement 
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Content-aware 1AM - Providing intelligence for improved 
security 



— Smarter identity management 

- Provision data policy with other access 

— Smarter web access management 

- Improved enforcement due to content checking before granting access 

— Smarter identity governance 

- Content analysis to enhance identity governance processes such as 
entitlement certification 




The importance of "control" 
(especially when you don't have it!) 




how does it all come together? 



Control 



Control 



Control 




Identity 




Access 




Information 



Manage and govern 

identities and what 

they can access based 

on their role 



Control access to 
systems & applications 
across physical, virtual 
& cloud environments 



Find, classify and 

control how 

information is used 

based on content and 

identity 



Content-aware identity and access management 
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how does it all come together? 



Control 




Identity 



Capabilities 

• Identity Governance 

• Role Management 

• Provisioning 

• User Activity Reporting 




Control 




Information 



Capabilities 

• Web Access Mgt 

• Privileged User Mgt 

• Virtualization Security 
•Authentication/Fraud Mgmt 



Capabilities 

• Information Discovery 

• Classification 

• Data Policy Management 



Content-aware identity and access management 
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Content-aware 1AM - extending to the cloud 



Core Needs 



Cloud Based Shift 



Control identities, their 
Content Aware 1AM access & how they can use 
the information they access 



Extend enterprise security to 
include security to Cloud 
Cloud based applications including 
SFDC 







Content Aware Identity and Accent Management 




Extend 
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Security for Cloud providers 
to ensure they meet the same 
Cloud level of security as within the 
enterprise 




Security as a Service from the 
Cloud . Examples: 
Cloud Authentication, Identity 
Mgt, Federation and SSO 
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"From the cloud" 

Consume critical security services from the cloud 
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Mobile 
employees 




Internal 
Employees 



Cloud based solutions 



Delegated 
Administrator 



advanced 
Auth. 




\ Identity 



Cogger 
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Requires interoperability with existing on- 

premise identity and access mgmt solutions 

(Provisioning, WAM, eSSO) 



•Enterprise » 
Apps 
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The last word.... 



Content-Aware 1AM is a significant evolution of 1AM because it 
provides: 

— Improved security over identities, access, AND information 

— Shared Intelligence on content and identity that can improve 
access decisions 

— Simplified compliance for easier audits 

— Security automation for improved efficiencies 
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